USN-8004-1

Details

Kim Dong Han discovered that FreeRDP did not correctly validate the size of certain variables, which could cause a buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code.

Affected Packages

freerdp2

Ubuntu 22.04 LTS

Fixed in:

2.6.1+dfsg1-3ubuntu2.8

freerdp2

Ubuntu Pro 18.04 LTS

Fixed in:

2.2.0+dfsg1-0ubuntu0.18.04.4+esm3

freerdp2

Ubuntu Pro 20.04 LTS

Fixed in:

2.6.1+dfsg1-0ubuntu0.20.04.2+esm1

freerdp2

Ubuntu Pro 24.04 LTS

Fixed in:

2.11.5+dfsg1-1ubuntu0.1~esm3

References

REPORT

https://ubuntu.com/security/CVE-2026-23530

REPORT

https://ubuntu.com/security/CVE-2026-23531

REPORT

https://ubuntu.com/security/CVE-2026-23532

REPORT

https://ubuntu.com/security/CVE-2026-23533

REPORT

https://ubuntu.com/security/CVE-2026-23534

ADVISORY

https://ubuntu.com/security/notices/USN-8004-1